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Project  Abstract  A  new  generation  of  mission-critical  systems  is  emerging  that 
employs  distributed,  dynamically  reconfigurable  open  architectures.  These  sys¬ 
tems  may  include  a  variety  of  devices  that  sense  and  affect  their  environment  and 
the  configuration  of  the  system  itself.  We  call  such  systems  Networked  Cyber- 
Physical  Systems  (NCPS).  NCPS  can  provide  complex,  situation-aware,  and  of¬ 
ten  critical  services  in  applications  such  as  distributed  sensing  and  surveillance, 
crisis  response,  self-assembling  structures  or  systems,  networked  satellite  and  un¬ 
manned  vehicle  missions,  or  distributed  critical  infrastructure  monitoring  and  con¬ 
trol.  NCPS  are  of  special  interest  to  the  Navy  in  view  of  the  increasing  need  for 
coordination  of  a  wide  spectrum  of  maritime  sensing  and  information  gathering 
technologies,  ranging  from  smart  mobile  buoys  to  autonomous  underwater  vehi¬ 
cles  and  their  integration  into  a  global  network  with  maritime,  space,  and  ground 
domains. 

NCPS  must  be  reactive  and  maintain  an  overall  situation,  location,  and  time 
awareness  that  emerges  from  the  exchange  of  knowledge.  They  must  achieve  sys¬ 
tem  goals  through  local,  asynchronous  actions,  using  (distributed)  control  loops 
through  which  the  environment  provides  essential  feedback.  They  must  deal  with 
uncertainty  and  partial  knowledge,  and  be  capable  of  a  wide  spectrum  of  oper¬ 
ations  between  autonomy  and  cooperation  to  adapt  to  resource  constraints  and 
disruptions  in  communication.  General  principles  and  tools  are  needed  for  build¬ 
ing  robust,  effective  NCPS.  A  key  observation  is  that  the  current  level  of  abstrac¬ 
tion  at  which  software  and  systems  are  designed  is  a  barrier  to  innovation  at  the 
hardware  and  networking  level  and  at  the  same  time  is  not  suitable  to  enable 
rapid  design/deployment  or  distributed  control  of  large-scale  distributed  software 
systems  and  in  particular  the  flexible,  dynamically  reconfigurable,  mission-critical 
NCPS  of  the  future. 
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We  propose  to  explore  a  new  paradigm  for  design  of  high-assurance  NCPS 
based  on  the  notion  of  software  fractionation  with  declarative  distributed  control 
and  optimization  aiming  at  the  effective  use  of  resources.  The  idea  of  software 
fractionation  is  inspired  by  and  complementary  to  hardware  fractionation,  which 
has  been  proposed  for  mission-critical  space  systems.  Fractionation  has  the  po¬ 
tential  of  leading  to  software  that  is  more  robust,  leveraging  both  diversity  and 
redundancy.  It  raises  the  level  of  abstraction  at  which  control  and  optimization 
techniques  are  applied. 

1  Technical  Approach 

In  this  project  we  adopt  a  view  of  cyber-physical  systems  that  goes  beyond 
the  conventional  definition  of  a  hardware/software  system  that  is  interacting 
with  the  physical  world.  Our  goal  is  to  explore  a  new  notion  of  software  that 
behaves  itself  closer  to  a  physical  or  biological  system.  In  other  words,  we 
aim  to  address  the  fundamental  problem  by  reducing  the  sharp  boundary 
between  physics  and  computation.  Our  rationale  is  that  current  models  of 
distributed  computing  are  too  abstract  by  not  taking  into  account  funda¬ 
mental  physical  limitations  and  hence  are  not  efficiently  implemcntablc  or 
scalable.  Once  limitations  can  be  explicitly  represented,  they  can  be  over¬ 
come  to  some  degree,  which  can  be  quantified,  e.g.,  probabilistically.  Like  in 
biological  systems,  diversification,  redundancy,  and  randomization  should  be 
utilized  to  overcome  physical  limitations  whenever  possible.  In  particular, 
distribution  is  a  source  of  redundancy  and  diversification  that  can  be  turned 
from  an  obstacle  into  an  advantage. 

In  our  approach,  software  is  fractionated  by  design  even  beyond  the  dis¬ 
tributed  nature  of  underlying  system,  with  distributed  knowledge  sharing 
as  the  underlying  model.  Computation  and  communication  is  not  rigid  but 
guided  by  the  physical  resources,  e.g.,  in  an  opportunistic  fashion.  Our  vi¬ 
sion  that  fractionated  software  operates  as  an  inherently  open  system  in  a 
highly  redundant  and  diversified  way  avoiding  single  points  of  responsibili¬ 
ties  and  failure.  Being  resource-aware,  fractionated  software  operates  in  the 
entire  spectrum  between  autonomy  to  cooperation.  Our  distributed  comput¬ 
ing  model  is  based  on  distributed  knowledge  sharing,  and  makes  very  few 
assumptions  but  restricts  the  shape  of  fractionated  software  so  that  it  can 
run  on  a  wide  range  of  platforms.  In  particular  it  does  not  assume  strong 
primitives  that  are  powerful  but  not  implementable  in  a  scalable  way. 
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2  Activities  during  this  Quarter 

Activities  during  this  quarter  comprise  research  on  theoretical  and  practical 
foundations  for  fractionated  cyber  physical  systems  (FCPS)  and  work  on  our 
networked  cyber-physical  systems  (NCPS)  testbed,  which  both  are  a  direct 
continuation  of  the  work  started  in  the  previous  quarter. 

2.1  Research  on  Theoretical  and  Practical  Foundations 
for  FCPS 

The  vision  of  fractionated  software  is  that  distributed  computations  are 
mapped  to  resources  at  runtime  in  a  flexible  way  without  the  need  for  a 
complex  (global)  coordination  mechanism.  If  some  components  fail  other 
components  can  step  in  and  take  over  the  computation  without  the  need  for 
explicit  migration.  Randomization  techniques  will  make  sure  that  enough  di¬ 
versity  is  maintained  to  allow  reasonably  efficient  operation,  e.g.,  to  achieve 
performance  and  reliability  constraints. 

A  key  capability  of  Fractionated  Cyber-Physical  Systems  (FCPS)  is  per¬ 
formance  of  goals  with  acceptable  fault  tolerance,  energy  consumption,  con¬ 
fidence  level  and  delay.  To  achieve  this  capability,  each  node  in  the  FCPS 
must  decide  independently  what  actions  to  take.  An  important  case  is  where 
the  system  goal  can  be  reduced  to  a  set  of  largely  independent  subgoals,  and 
the  actions  of  a  node  consist  in  selecting  and  executing  subgoals.  This  deci¬ 
sion  process  is  a  function  of  the  parameters  of  the  FCPS  and  its  environment. 
We  created  an  abstract  model  for  this  decision  process,  the  Stochastic  Task 
Execution  Model  (STEM),  and  examined  its  behavior  to  gain  insight  into 
an  optimal  task  execution  decision  process  for  FCPS.  Model  parameters  in¬ 
clude  the  number  of  nodes,  node  connectivity  and  communications  delay,  the 
number  of  subgoals,  desired  goal  coverage  and  confidence  level.  Monte  Carlo 
simulation  was  carried  out  to  investigate  the  effects  of  different  parameter 
choices  and  requirements  on  efficiency  (the  number  of  subgoals  covered  di¬ 
vided  by  the  number  of  subgoai  executions),  performance  (efficiency  divided 
by  total  effort  =  number  of  nodes  times  the  time  to  completion).  The  ability 
of  nodes  to  share  knowledge  is  a  key  factor.  In  our  simplified  model,  with 
sufficient  communication  a  node  to  subgoal  ratio  between  .5  and  1  provides 
close  to  optimal  efficiency  and  performance. 
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2.2  Work  on  NCPS  Testbed  and  Software  Interfaces 

We  are  continuing  to  develop  a  small  UAV  testbed  consisting  of  10  inex¬ 
pensive  quadcopters  at  SRI.  Hardware-wise,  we  added  heat  sinks  to  mitigate 
the  impact  of  additional  heat  that  is  caused  by  our  modification  with  an 
additional  on-board  computer  (Gumstix  Overo  Fire  that  comes  with  a  WiFi 
module)  as  well  as  sensors  such  as  a  digital  compass  and  a  GPS  module. 
Software-wise,  the  localization  and  navigation  capabilities  for  a  single  UAV 
has  been  improved  by  coordinating  the  existing  gyroscope  and  the  attached 
GPS/compass  and  the  accuracy  has  been  tested  in  real  world  situations.  We 
are  currently  in  the  process  of  integrating  flight  control  software  described 
in  a  format  of  workflow  with  our  cyber-application  framework  for  networked 
cybcr-physical  systems.  As  a  first,  step,  wc  tested  position  information  ex¬ 
change  among  UAVs  that  is  based  on  the  notion  of  partially  ordered  knowl¬ 
edge  sharing  model  in  the  cyber-application  framework.  In  the  end,  we  expect 
that  the  additional  on-board  computer  can  be  used  to  run  high-level  flight 
control  software  and  the  cyber-application  framework  with  networking  and 
workflow  execution  capabilities  while  an  on-board  embedded  Linux  system 
deals  with  low-level  controls. 
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